formerly Managed Phishline
Back to Managed Security Awareness Training
Glossary
- add-in
-
Software utility that can be used in conjunction with a device or service; for example, Barracuda Outlook Add-In.
- add-on
-
A piece of software that enhances another software application and usually cannot be run independently.
- Advanced Persistent Threat
-
Malicious cyber attacks directed at a specific target, usually over a long period of time. APTs are often run by professional organizations, looking to steal information rather than just money.
- AMI
-
AWS template that contains configuration, application server, and applications required to launch an EC2 AWS Instance.
- Android
-
Mobile device operating system. Compare to Apple iOS.
- anti-evasion
-
Protection against network attacks that combine several different known evasion methods to create a new technique that is delivered over several layers of the network simultaneously.
- anti-obfuscation
-
Protection against attacks that involve obfuscated code. Obfuscation may involve encrypting code, stripping out potentially revealing metadata, renaming useful class and variable names, or adding meaningless code to an application binary.
- antivirus
-
Antivirus software, abbreviated: AV. Used to prevent, detect and remove malicious software.
- API
-
A set of tools and procedures provided by the programmer of an application so that other programmers can control, exchange data with, or extend the functionality of an application.
- APN
-
Access Point Name provided by an ISP for wireless WAN connections.
- Apple iOS
-
Apple mobile operating system for devices such as iPhone and iPad. Compare to Android.
- appliance
-
Device or piece of equipment.
- Application Load Balancer
-
AWS feature that makes routing decisions at the application layer (HTTP/S), supports path-based routing, and can route requests to one or more ports on each EC2 instance or container instance in a VPC.
- ARP
-
Protocol for mapping IP addresses to physical addresses such as Ethernet or Token Ring.
- ARP spoofing
-
Type of attack in which a malicious actor sends falsified ARP (Address Resolution Protocol) messages over a local area network. This results in the linking of an attacker's MAC address with the IP address of a legitimate computer or server on the network.
- ASCII
-
Referring to a standard 7-bit character system that includes the alphanumeric characters and printer control codes.
- authoritative DNS
-
Name server that gives answers in response to queries about names in a DNS zone.
- authority zone
-
Associated with DNS. A section of the domain-name tree for which one name server is the authority.
- Auto Scaling Group
-
A representation of multiple EC2 instances that share similar characteristics, and that are treated as a logical grouping for the purposes of instance scaling and management.
- autonomous system
-
Collection of networks under a common administration sharing a common routing strategy. Autonomous systems are subdivided by areas. An autonomous system must be assigned a unique 16-bit number by the IANA.
- AWS Direct Connect
-
Enables you to use the Internet privately through AWS cloud services by linking your internal network to an AWS Direct Connect location. You can create virtual interfaces directly to the AWS cloud and to Amazon VPC, bypassing Internet service providers in your network path.
- AWS IoT
-
A managed cloud platform that lets connected devices easily and securely interact with cloud applications and other devices.
- AWS region
-
A named set of AWS resources in the same geographical area. A region comprises at least two Availability Zones.
- AWS Management Console
-
A simple and intuitive web-based user interface to access and manage AWS.
- back-end server
-
Part of the back-end process, that usually consists of server, application, and database. The back end is where the technical processes happen, as opposed to the front end, which is usually where the user's interaction occurs.
- backbone
-
Referring to the Internet, a central network that provides a pathway for other networks to communicate.
- Balance-XOR
-
Operating mode for Ethernet bundles where the link is chosen by calculating the hash out of the source/destination MAC (Layer 2) combined with the IP addresses (Level 3).
- bandwidth
-
Rate of data transfer, usually expressed in multiples of bits per second (bps).
- Barracuda Campus
-
Online documentation and training material for all Barracuda Networks products, located at campus.barracuda.com. Contains feature descriptions, how-to articles, and release notes. Formerly known as Barracuda University and Barracuda TechLibrary.
- Barracuda Central
-
Provides a wide range of statistics, threat information, and a number of useful services to help manage and secure your network. Shares information with Barracuda Networks customers and the Internet security community.
- Barracuda cloud
-
A complementary component of all Barracuda Networks products, providing an added layer of protection and scalability.
- Barracuda Networks account
-
Credentialed account used to log into Barracuda Services and Barracuda Appliance Control.
- Barracuda Networks Technical Support
-
Contact Barracuda Networks Technical Support if you need help with your Barracuda Networks product. Visit https://www.barracuda.com/support/index for details.
- Barracuda NextGen Firewall X-Series
-
Application-aware network firewall appliance, designed for organizations without dedicated IT personnel to manage firewalls.
- Barracuda NG Web Security Gateway (IBM ISS)
-
Web Security Gateway engine used by the URL Filter service on the Barracuda NextGen Firewall F-Series. The Barracuda NG Web Security Filter can only be used in combination with the HTTP proxy and is not compatible with Application Control. Requires a Barracuda NG Web Security Gateway subscription.
- Barracuda portal
-
Entry point into Barracuda cloud services.
- BIND
-
The standard TCP/IP naming service that links network names with IP addresses.
- block device
-
Storage device that moves data in sequences of bytes or bits (blocks). Example: hard disk, CD-ROM drive, flash drive.
- block device mapping
-
Defines the block devices (instance store volumes and EBS volumes) to attach to an AWS instance.
- Blowfish
-
Licence-free symmetric encryption algorithm that can be used as a replacement for the DES and IDEA algorithms.
- byte-level data deduplication
-
Data deduplication method that analyzes data streams at the byte level by performing a byte-by-byte comparison of new data streams versus previously stored ones.
- CAST
-
Licence-free symmetric encryption algorithm (key block cipher).
- certificate
-
A document or seal certifying the authenticity of something. A digital certificate certifies the ownership of a public key. This allows relying parties to rely upon signatures or on assertions made about the private key that corresponds to the certified public key.
- changelog
-
Log of configuration changes on the appliance. Can be found in the release notes of the product.
- checksum
-
The result of a mathematical operation that uses the binary representation of a group of data as its basis, usually to check the integrity of the data.
- Class A|B|C|D network
-
Classes of IP addresses as defined in the Internet Protocol hierarchy.
- classic load balancer
-
In AWS, a Classic Load Balancer makes routing decisions at either the transport layer (TCP/SSL) or the application layer (HTTP/HTTPS), and supports either EC2-Classic or a VPC (virtual private cloud).
- cloud integration
-
AWS cloud integration allows the firewall to connect directly to the AWS service fabric to rewrite routes in AWS route tables and to retrieve information for the cloud element on the dashboard. Cloud integration also works with Azure.
- cloud operating system
-
A computer operating system that is specially designed to run in a provider's datacenter and be delivered to the user over the Internet or another network. Windows Azure is an example of a cloud operating system or 'cloud layer' that runs on Windows Server 2008.
- cloud portability
-
The ability to move applications and data from one cloud provider to another. This is the opposite of "vendor lock-in".
- cloud-based encryption
-
A service offered by cloud storage providers whereby data is transformed using encryption algorithms and is then placed on a storage cloud.
- CloudFormation
-
AWS management tool that lets you create, manage, and update a collection of AWS resources using templates and allowing Json code for template deployment.
- CloudFront
-
An AWS content delivery service that helps you improve the performance, reliability, and availability of your websites and applications.
- cloudsourcing
-
Replacing traditional IT operations with lower-cost, outsourced cloud services.
- CloudWatch
-
AWS management tool to monitor resources and applications. Aggregates data and metrics (cpu load, network throughput, disk io, etc), filters it, and provides alarm actions.
- cluster-specific
-
Global settings that apply to a cluster on a Barracuda NextGen Control Center.
- collision domain
-
In Ethernet, the network area within which frames that have collided are propagated. Repeaters and hubs propagate collisions. LAN switches, bridges and routers do not.
- congestion
-
Traffic in excess of network capacity.
- connection draining
-
AWS feature, lets you scale down EC2 instances to reduce sessions.
- CPU emulation
-
Masks the virtualization environment, so payload can be detonated more effectively.
- cross region replication
-
Feature of S3 storage class in AWS. Once enabled, every object uploaded to a particular S3 bucket is automatically replicated to a designated destination bucket located in a different AWS region.